expo-cicd-workflows

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's workflow explicitly requires fetching the live EAS schema from https://api.expo.dev/v2/workflows/schema (and related docs from raw.githubusercontent.com) and the agent must read and derive workflow-generation/validation decisions from that public third-party content, so those external pages could materially influence tool behavior.